III. CLAIM AMENDMENTS 



1. (Cancelled) 



2. (Cancelled) 

i 

3 . ( Cur rent 1 y Amended ) A me thod to authe nticate a mobile 

station in a mobile network comprising: 

authenticating the mobile station with user-to-user data 
exchange; and 

exchanging the data during call set-up or during a call^ A 
m e th od ■ according — to — claim 1^ — charact e rized — i^i — that wherein 
the data is exchanged during a call. 



4. (Currently Amended) A method according to claim i3 
charact e ri z e d — ift — that — alGO wherein an encryption key is agreed 
between two mobile stations. 



5. (Currently Amended) A method according to claim 4, 

charact e ri z e d — — that wherein the mobile stations execute a 

mutual authentication and key agreement protocol based on 
public-key cryptography. 



6. (Currently Amended) A method according to claim 5, 
eha3^a<2-t•er-i--z-ed- — -tn- — t-h-a-t- wherein a second mobile station is 
authenticated by 

8 



a first mobile station -fAf constructing and sending to the 
second mobile station -^Rf a first message -(Mi-)-, the second 
mobile station -fB-)- receiving the first message -{-M^-f, 

constructing and sending a second message -fM^-)- to the first 
mobile station 

the first mobile station -fAf receiving the second message 
-fMa-)-, checking the validity of the information in the second 
message -fM^-f, if the information is verified valid the first 
mobile station -fA-}- accepting to share a shared encryption 
key K with the second mobile station -f&)-, the first mobile 
station -fA)- constructing and sending a third message -(M3-)- to 
the second mobile station -fB-)-, 

the second mobile station -fBf receiving the third message -(Ma^ 
and verifying the validity of the information, if the 
information is valid the second mobile station -fB-)- 
accepting the sharing of the shared encryption key K with 
the first mobile station -fAf . 

7, (Currently Amended) A method according fee claim &7~ 

charact e r i z e d — in that A method to authenticate a mobile 
station in a_ mobile network comprising: 

authenticating the mobile station with user-to-user data 

exchange; 

an encryption key is agreed between two mobile stations; 

the two mobile stations execute a mutual authentication and 
key agreement protocol based on public key cryptography; 
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the second mobile station is authenticated by: 

a first mobile station constructing and sending to the 
s^cond^ mobile jstation a first message ^ t he sec ond mobile 
station receiving the first message/ 

constructing and sending a second message to the first 
mobile station, 

the first mobile station receiving the second message, 
checking the validity of the information in the second 
message, if the information is veri f i e d v alid the first 
mobile station accepting to share a shared encryption key 
K with the second mobile station, the first mobile 
station constructing and sending a third message to the 
second mobile station, 

the second mobile station receiving the third message and 

verifying the validity of the information, if the 

information is valid the second mobile station accepting 
the sharing of the shared encryption key K with the first 
mobile station , 

a^the second mobile station is authenticated by the first 
mobile station selecting a prime number p, a generator a of a 
multiplicative group of integers modulo p when p > a > 2 and a 
random secret x when p-2 > x > 1, constructing and sending to 
the second mobile station the first message containing 

a^p^a"" mod p f 



bf the second mobile station receiving the first message and 
afterwards generating a secret y when p-2 > y > 1 and 
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computing a second shared key K2 = (a'"^)^ mod signing a 

concatenation of exponentials {a^, a""} and encrypting a 
result Sela^, a""} with the second shared key leading to 
EK(SB{a^, a^}), constructing and sending the second message 
to the first mobile station containing 

mod p,cert^,Ef.(Ss 1^^^^''}) / 

certificate certe in the second message containing a signature 
verification key of the second mobile station, the exact 
contents of the certificate being of at least the following 
minimum 

Pb being a public signature verification key of the mobile 
station B and St a signature transformation of a trusted 
authority T whose public signature verification key is 
known in the first and second mobile stations, 

ef the first mobile station receiving the second message and 
afterwards computing a first shared encryption key (a^)"" mod 
p = (a"")^ mod p = Ki, checking the validity of the 
certificate certe the first mobile station, when the 
certificate certe is valid the encrypted part EKlSefa^, a""}) 
of the second message is decrypted to receive a signature 
Ssia^, a""} and the signature SB{a^, a""} is verified with a 
public signature verification key pe of the second mobile 
station, if the signature Sefa^, a""} is verified valid the 
first mobile station accepts to share the shared encryption 
key Ki with the second mobile station. 



11 




di- the first mobile station signing a concatenation of 
•exponentials {a"", a^} and encrypting result SAia^'^a^} with 
the first shared key Ki leading to EKlSAla"", a^}), the first 
mobile station constructing and sending the third message 
to the second mobile station containing 

cert„E^{S,{a\ay}), 

certA including corresponding information with certe of the 
first mobile station, exact contents of the certificate 
certA being at least of the following minimum 

cert^ =(B,p^,a,p,Sj^{B,p^,a,p}) , 

Pa being a public signature verification key of the first 
subscriber and S? a signature transformation of a trusted 
authority T whose public signature verification key is 
known by the first and second mobile stations, 

e^- the second mobile station receiving the third message and 
verifying validity of the certA/ decrypting EAOAia"", a^}) 
and verifying validity of signature of SA{a^, a^}, if all 
the signatures are valid the second mobile station 
accepting sharing of the second shared encryption key K2 
with the mobile station. 

8. (Currently Amended) A method according to claim 1 
charact e riz e d in that wherein the data is exchanged through user- 
to-user signalling . 
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9. (Currently Amended) A cellular communications system, where 
the first and second mobile stations are wireless connected with 
via base stations, charact e riz e d — ±^ — that — 3rtwhe re in t he system 
comprises 

a) a first mobile station, authenticated with user-to-user 
data exchange dur i n g call set up or du r i ng a call , that 
constructs and sends a first message, receives and verifies 
the validity of a second message and when the information 
is verified valid accepts to share a shared encryption key 
K, constructs and sends a third message, 

b) a second mobile station, that receives the first message 
and constructs and sends the second message, receives and 
verifies the validity of the third message and when the 
information is valid accepts to share the shared encryption 
key K with the first mobile station, and 

c) at least one mobile switching centre • 

10. (Currently Amended) A communications system according to 
claim 9, eh:a-raete-ri-zed — in — ttet--i-t wherein the system comprises 
two mobile switching centres connected together with ISDN. 

11. (Currently Amended) A mobile station, cha-raet-e-ri"Z^--i-n--fefea-t- 
jr^ wherein the mobile station comprises: 

a) a processor to perform operations needed to form and verify 
messages, to implement authentication of the^^^^ st^tip.?. 
with user-to-user data exchange durin^^^ .9.^1.1 .?.?.lr. yP. 9S 
during a call, and key agreement procedures. 
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b) a memory, where procedures and messages are stored with 
neces'sary parameters and variables, 

c) output means, on which commencement of extra secure 
communication is presented to a user of the mobile station, 

d) input means to enable validation of the extra secure 
communication, 

e) a transmitter/receiver and an antenna to transform 
information to radio waves from digital signals and vice 
versa. 

12. (Currently Amended) A mobile station according to claim 11, 

charaot e ri z e d ii^ that wherein the output means comprises a 

display. 

13. (Currently Amended) A mobile station according to claim 11, 

charact e riz e d i^^ that wherein the input means comprises a 

keyboard. 

14. (Currently Amended) A mobile station according to claim 11, 
charact e r i z e d — ±n — that — i^wher e i the mobile station is des i gned 
to GSM standards. 



15. (Currently Amended) A mobile station according to claim 11, 
eha-r aete-r-i*2ed--i-H----the:t — i-t- wherein the mobile station is designed 
to UTMS standards. — — ^ 



